scraper

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill's required workflow (Step 4 "Explore the Target Website" in SKILL.md) instructs the agent to navigate to arbitrary target URLs with Playwright/Playwright MCP, take snapshots, and inspect page DOM—i.e., fetch and interpret untrusted public web content which directly determines selectors, pagination, and generated script behavior.